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AMENDMENTS TO THE CLAIMS 

This listing of claims will replace all prior versions and listings of claims in the 
application: 

LISTING OF CLAIMS 

1. (original) An apparatus for ascertaining the status of a data processing 
environment, comprising at least one trusted computing device which is 
arranged to challenge other devices within a data processing environment, to 
keep a record of the response and to make the record available. 

2. (original) An apparatus as claimed in claim 1, in which the trusted computing 
device is arranged to make periodic challenges to the other devices in order to 
maintain the accuracy of the record. 

3. (original) An apparatus as claimed in claim 1, in which the record indicates the 
historical status of the data processing environment. 

4. (original) An apparatus as claimed in claim 1, in which the at least one trusted 
computing device is arranged to listen to communications within the data 
processing environment so as to identify the presence of new devices. 

5. (original) An apparatus as claimed in claim 1, in which the record includes 
data identifying the type of devices in the data processing environment. 

6. (original) An apparatus as claimed in claim 1, in which the trusted computing 
device is arranged to analyse the responses it receives in order to determine if a 
given device in the data processing environment is trustworthy. 

7. (original) An apparatus as claimed in claim 6, in which the record indicates 
whether a device has been judged as trustworthy by the trusted computing 
device. 
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8. (original) An apparatus as claimed in claim 1, in which the at least one trusted 
computing device acts as a gateway to the data processing environment. 

9. (original) An apparatus as claimed in claim 1, in which the at least one trusted 
computing device is a server. 

10. (original) An apparatus as claimed in claim 1 in which the at least one trusted 
computing device transmits a challenge which includes a generation identifier 
which enables devices receiving the challenge to identify whether the challenge 
is valid. 

11. (canceled) 

12. (original) A computing device including a communication device and a data 
processor, wherein the data processor is arranged to establish communication 
with a trusted computing device via the communication device, to receive at 
least part of the record of responses and to establish from an internal rules base 
whether the data processing environment is trustworthy enough to enable a class 
of transaction or task to be carried out in that environment. 

13. (original) A computing device including a communication device and a data 
processor, wherein the computing device uses the communication device to 
establish communication with at least one device within a data processing 
system, and in which the data processor is arranged to identify challenges from 
at least one trusted computing device, to apply response rules to the challenge 
and, if a response indicated, to respond to the challenge in accordance with the 
rules. 

14. (original) A computing device as claimed in claim 13, in which the computing 
device is arranged to search for a generation identifier within the challenge, to 
apply response rules to the generation identifier to see if the challenge is still 
valid, and if it is not to disregard the challenge. 
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15. (original) A computing device as claimed in claim 14, in which the computing 
device retransmits the challenge with a modified generation identifier if the 
challenge is valid. 

16. (original) A method of ascertaining the status of a data processing 
environment, comprising the following steps: a trusted computing device 
challenges other devices within a data processing environment, keeps a record of 
responses made to the challenges and makes the record available. 

17. (original) A method as claimed in claim 16, in which the trusted computing 
continues to challenge the devices in the data processing environment so as to 
maintain an evolving record of the status of the data processing environment. 

18. (original) A method as claimed in claim 16, in which the record includes a 
historical status of the data processing environment. 

19. (original) A method as claimed in claim 16, in which the at least one trusted 
computing device listens to communications within the data processing 
environment so as to identify the presence of new devices. 

20. (original) A method as claimed in claim 16, in which the challenge generated 
by the trusted device includes a generation identifier such that any device 
receiving the challenge can examine the generation identifier in order to establish 
whether the challenge is directly received from the trusted computing device or 
whether it has been retransmitted. . 

21. (original) A method of conducting a transaction in a data processing 
environment comprising a user device and at least a trusted computing device 
each having respective communication capabilities wherein the trusted 
computing device keeps a record of computing devices that it has identified 
within the data processing environment, and whereby the user device establishes 
communication with the trusted computing device, the trusted computing device 
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sends to the user device at least a portion of the record of computing devices 
within the data processing environment, and the user device analyses the record 
to establish what facilitates the user device may access. 

22. (original) A method of conducting a transaction as claimed in claim 21, 
wherein the user device further analyses the record in accordance with a set of 
security rules to determine what level of trust can be placed on the integrity of 
the data processinjg environment. 

23. (original) An apparatus for ascertaining the status of a data processing 
environment, comprising at least one trusted computing device which is 
arranged to make periodic challenges to other devices within a data processing 
environment, to analyse the responses it receives in order to determine if given 
devices in the data processing environment are trustworthy, to keep a record of 
the response and to make the record available to other devices in the data 
processing environment. 

24. (original) A method of ascertaining the status of a data processing 
environment, comprising the following steps: a trusted computing device makes 
multiple challenges to other devices within a data processing environment, keeps 
a record of responses made to the challenges, analyses the responses it receives 
in order to determine if given devices in the data processing environment are 
trustworthy and makes the record available to other devices in the data 
processing environment. 



